CaZe: yes, http://support.arpnetworks.com/kb/main/is-there-a-firewall-filter-rate-limit-or-similar-device-applied-to-my-traffic farstrucker /win 6 up_the_irons: Oh, I thought it were more aggressive than that. s/it/the limits/ up_the_irons: Oh, I thought the limits were more aggressive than that. Most likely, up_the_irons doesn't want to interfere [too much], just enough to curtail the most flagrant attacks. One should never rely on their hosting provider (unless you're paying for management) to handle basic security, of course. The rate limit is more for ARP's network's protection than your own - limit the flood upstream to keep the downstream waters calm. Well, I use publickey. It's just annoying to have my logs fill up. pf rate-limit syntax is stupid easy :) as is setting up fail2ban (depending on your OS) Yeah, I've already set it up. I just never bothered to in the first place. hey RandalSchwartz so I'm still not sure I understand how to get to the console of my dedicated box do I just need to be on the VPN? Yes ok - I'm on the VPN, now what. :) up_the_irons: Are you around to help RandalSchwartz ? I know that you pull up a web page I see an IPMI URL Presumably using the private VPN address of your box Probably that address, yes. Oh wait, I remember... we got this far before then it is broken because Java is broken on OSX. http://support.arpnetworks.com/kb/dedicated-servers/how-do-i-access-my-arp-metal-dedicated-server-console it's pretty clear under "Console Access" *ahem* Did I say FAQ-bot, or did I say up_the_irons? :P Ohh.. it actually works now. (You're right though, it is plain and clear) brycec: BryceBot should should answer with FAQ links ;) is it the "console redirection" that I want? Someday it might :) how do I get the equivalent of the VNC console? (Though I've just started learning Ruby, so I'm going to try and keep PHP out of my head for a little while) and if I want 8.4 instead of 8.3 release, is that a support request? I think you just load the appropriate ISO and reboot the machine to the CD See the "Virtual Media" section on the FAQ article right - I see that I can *upload* an 8.4 image... but I'd rather not upload if it's already there somewhere. :) RandalSchwartz: No it's not uploading. Read the FAQ carefully. it's linked to ARP's ISO library. ok that FAQ doesn't talk about how to VNC though To access your server's console, click Remote Control -> Console Redirection -> Launch Console I tried Launch Console... did nothing. is it supposed to launch some sort of thing like "chicken of the vnc"? So it DOES talk about it, but the button isn't working for you apparently. it launches a Java app that is equiv to VNC yeah, not working :( RandalSchwartz: trying using a windows VM ok - so my virtual media looks like \iso\mfsbsd-8.3-RELEASE-amd64.iso java generally works better on windows the iso library pages do not talk about \iso\ odd, OSX usually isn't an OS where i get a lot of headaches with this stuff (if you're on Linux, like me, THEN it can be a bit tricky ;) do I just cut-n-paste FreeBSD-8.3-RELEASE-amd64-dvd1.iso into the last part of that box? oops. 8.4 of course reardencode: Read the Virtual Media section of the FAQ link above woops Oh - there is no dvd RandalSchwartz: ^ Path to image: \iso\ "Replace with the ISO filename listed in our ISO Library" and there's a link to the library listen - I'm looking at all that and I'm not stupid it says "you can change..." and "here are the isos" but not how to adapt a web page with links into a form fillout box do I need to put \iso\ in front of the link? Yes, it says verbatim: "Fill in the form as follows:" and then "Path to image: \iso\" where are you seeing that? are we reading the same thing? http://support.arpnetworks.com/kb/dedicated-servers/how-do-i-access-my-arp-metal-dedicated-server-console Oh crap... more scrolling yes scroll down to "Virtual Media" my fault for not scrolling np But I'll have to find the wget URL for 8.4 RandalSchwartz: No need, 8.4 is already available Nope not 8.4 dvd Oh you specifically want the -dvd1.iso RandalSchwartz: gimme a URL and i'll wget it real fast for ya No - not urgent right now k I have a half dozen other issues that's what happens when I'm sitting across from Neil then whenever you're ready just send the URL to support@ up_the_irons: http://mirrors.arpnetworks.com/freebsd/ISO-IMAGES-amd64/8.4/FreeBSD-8.4-RELEASE-amd64-dvd1.iso http://mirrors.arpnetworks.com/FreeBSD/ISO-IMAGES-amd64/8.4/FreeBSD-8.4-RELEASE-amd64-dvd1.iso that should work mnathani: o/ :) the console redirect is erroring in safari with Failed to load resource: Frame load interrupted maybe chrome will work betterr brycec: jinx up_the_irons: Just wondering - do you deduplicate, hardlink from ISO_Library to the mirrors? Er, from the mirror'd copy to ISO_Library RandalSchwartz: chrome will probably be better brycec: lol no i just copy it over ;) would probably be smart to hardlink or something... up_the_irons: And you complain about running out of disk space? :P 8.4 -dvd1 is now there up_the_irons: find freebsd/ -iname '*.iso' -exec ln -f {} ISO_Libary/ + Or something about like that HOT Overwrites existing files with the hardlink ugh - security issues launch.jnlp can't be opened because it is from an unidentifed devleoper Thank you Mr. Jobs yeah u have to click trust on the dialog nope - got past that dialog... failed at "self signed cert" step sounds like you need to loosen your security settings Not sure where that would be there were no prefs on the java executor System Preferences -> Security maybe? i'm not sure i've had that problem before; a self signed cert should be OK RandalSchwartz: check out http://superuser.com/questions/404178/importing-a-self-signed-ssl-certificate-on-macos java complained it's not the browser complaining oh RandalSchwartz: http://faq.mydocsonline.com/786/mdodesktop-jnlp-cant-be-opened-because-it-is-from-an-unidentified-developer/ It's not Java, it's OSX Yes - I already got past that step this is the NEXT step Sorry thought you were stuck on │16:18:38 RandalSchwartz | launch.jnlp can't be opened because it is from an unidentifed devleoper (I didn't see where you got past that) Yeah - I got past that you should be able to just 2fingertap/rightclick and click open iirc that automatically only blocks doubleclick executions but you can 'open anyway' via context menu (It's been established that he got past that part.) But you have a good tip. even setting "allow applications downloaded from anywhere" in preferences doesn't help just checked is there any chance you can give that download a real cert, not a self-cert? RandalSchwartz Do you have fbsd in virtualbox / vagrant for salt testing? not for salt testing no How about vagrant / fbsd period? I've got the latest vagrant and vbox. I can't seem to avoid errors related to "mount_virtualbox_shared_folder".. looks like my synced_folders are mounted OK but it never runs the salt provisioner because this error happens.. you have to use NFS Right, I am using nfs here, let me paste my Vagrantfile (if you don't mind taking a look) the timing for NFS and direct salt provisioning is broken the NFS mounts too late of course it does :-/ ok so I just boot the box, then highstate myself yea ok ahh! solved the java problem ! requires system preferences -> java security tab, move slider to medium I can now see my server's console! RandalSchwartz would you mind sharing your Vagrantfile with me? Just want to make sure I'm not mising something.. my box is taking like 3 minutes to boot yeah gimme sec awesome.. thanks man ... http://pastebin.com/9yKEdfuJ right on.. thank you I built the basebox with https://github.com/wunki/vagrant-freebsd That's what I used too then I disabled the FreeBSD: { enabled: no } for repos and point at my own poudriere then pkg upgrade, pkg install py27-salt RandalSchwartz Do you use pkg to keep salt updated via salt? Someone in #salt gave me a statefile that uses the git repo to stay updated.. pretty nifty I have poudriere build things I like packages... build once, install 6 times woah.. salt provisioner is running :) the missing piece was mounting . to /vagrant instead of /usr/home/vagrant (where I was trying before) unfortunately, 2014.1.7 is broken from ports I installed it, and borked my system luckily, I had a 2014.1.4 around error: pathspec '2014.1.7' did not match any file(s) known to git. grrr Well that's better. Only 13 lines of log from brute force attempts in the last 8 hours. That's quite reasonable